CVE-2018-4309

Name of the Vulnerable Software and Affected Versions Apple Safari versions prior to iOS 12 Apple Safari versions prior to tvOS 12 Apple Safari version prior to 12 Apple iTunes version prior to 12.9 for Windows Apple iCloud for Windows version prior to 7.7

Description A cross-site scripting issue existed in Safari, which was addressed with improved URL validation.

Recommendations For versions prior to iOS 12, update to iOS 12 or later. For versions prior to tvOS 12, update to tvOS 12 or later. For version prior to 12 of Safari, update to Safari 12 or later. For version prior to 12.9 of iTunes for Windows, update to iTunes 12.9 or later for Windows. For version prior to 7.7 of iCloud for Windows, update to iCloud for Windows 7.7 or later.